bdcd4b97a519454faa0e312478eb7add_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bdcd4b97a519454faa0e312478eb7add_JaffaCakes118
Size

2.4MB
MD5

bdcd4b97a519454faa0e312478eb7add
SHA1

f3d2ccde732cabc15618b2e832bb5f6bac198388
SHA256

45f0d78727f3d3af035a21bc537fdc9b2c24afd2c0ef408cb6d50b8556af16a5
SHA512

d753139a591bccd3b8e47276de8c895f5f5abc037cfc54f0a0d823a7faf12c436b3ab658b067a7a78cce7455ebec91095ad92608f117981a97cd64be780e10f5
SSDEEP

49152:63rz2OGfBlIl3NWwlKZb5LEHv7ccXmILJQ9l528hWxuIN:63XXGXy3NdKPEjfXmIJQd28KN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdcd4b97a519454faa0e312478eb7add_JaffaCakes118

Files

bdcd4b97a519454faa0e312478eb7add_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e4b20ab7ae162d47ade3115ab3335681

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
TranslateAcceleratorW
GetSystemMenu
CheckMenuRadioItem
LoadBitmapA
LoadStringW
ReleaseDC
FlashWindowEx
UnionRect
SetPropW
SetClipboardViewer
SetProcessWindowStation
CallWindowProcA
CloseWindow
ValidateRect
GetMenuItemRect
CopyRect
IsWindowEnabled
GetFocus
SetSysColors
DdeCreateStringHandleW
InsertMenuA
DispatchMessageA
AppendMenuA
RegisterClassA
CreatePopupMenu
SetWindowTextA
DdeInitializeW
UnloadKeyboardLayout
DestroyCursor
DestroyAcceleratorTable
EnumThreadWindows
CopyImage
GetMenuItemCount
DrawMenuBar
SetWindowContextHelpId
IsWindowVisible
DrawIconEx
ShowWindowAsync
CharLowerW
DrawFocusRect
DdeGetQualityOfService
MoveWindow
EndPaint
GetUserObjectInformationA
GetMessageA
GetWindowContextHelpId
SetScrollPos
GetClassInfoExW
TranslateMessage
PeekMessageA
DdeDisconnectList
GetSubMenu
DdeClientTransaction
BeginPaint

dbghelp

SymFunctionTableAccess
ImagehlpApiVersionEx
SymLoadModule
SymSetOptions

comdlg32

PageSetupDlgW
PrintDlgExW
ReplaceTextW
GetSaveFileNameA
GetOpenFileNameW

gdi32

ExtCreateRegion
GetStockObject
SelectPalette
EndPath
CreatePenIndirect
GetCurrentObject
SetTextAlign
GetFontResourceInfoW
SetLayout
DeleteMetaFile
CreateRoundRectRgn
CreatePatternBrush
CreateHatchBrush
GetCharWidth32W
GetTextAlign
GetBrushOrgEx
DeleteObject
CreateDiscardableBitmap
GetMiterLimit

kernel32

GetCPInfo
TerminateProcess
GetConsoleTitleA
HeapAlloc
GetModuleHandleW
GetFileAttributesExA
GetFileSize
AssignProcessToJobObject
GetModuleHandleExA
GetVolumeInformationW
EnumResourceNamesW
ReadConsoleInputExW
FindResourceExA
FlushConsoleInputBuffer
EraseTape
lstrlenW
GetProcessHeap
PostQueuedCompletionStatus
CreateThread
OpenEventW
UnmapViewOfFile
SetSystemTimeAdjustment
SetHandleInformation
ShowConsoleCursor
lstrcpynW
EnumResourceNamesA
TerminateThread
TerminateJobObject
WideCharToMultiByte
GetCurrentThread
GetStartupInfoW
MoveFileExA
TransactNamedPipe
ContinueDebugEvent
FreeEnvironmentStringsW
FindResourceA
WriteProfileSectionA
GetOEMCP
HeapSize
WaitForSingleObject
HeapFree
MulDiv
lstrcmpiW
GetLongPathNameW
ExpandEnvironmentStringsA
LoadLibraryA
SetConsoleCtrlHandler
WaitForMultipleObjects
IsDBCSLeadByte

msvcrt

_vsnprintf
strerror
strcspn
malloc
iswctype
strrchr
rand
wcsspn

ntdll

strcpy
memset

Exports

Exports

DahYugVwuwXnopj@4
_Get_Region@8
LzeVysgtfhAzp@8
UmlUkjhPmlyik@12
_Set_Region@12

Sections

.code
Size: - Virtual size: 6.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 634B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4b20ab7ae162d47ade3115ab3335681

Headers

File Characteristics

Imports

user32

dbghelp

comdlg32

gdi32

kernel32

msvcrt

ntdll

Exports

Exports

Sections

.code Size: - Virtual size: 6.5MB

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 7KB - Virtual size: 7KB

.rsrc Size: 2.4MB - Virtual size: 2.4MB

.reloc Size: 1024B - Virtual size: 634B

.code
Size: - Virtual size: 6.5MB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

.reloc
Size: 1024B - Virtual size: 634B